Re: SSL confirmation - No trusted certificate found

From: Kris Jurka <books(at)ejurka(dot)com>
To: Andrew M <andrew(at)jibeya(dot)com>
Cc: pgsql-general(at)postgresql(dot)org
Subject: Re: SSL confirmation - No trusted certificate found
Date: 2004-12-06 12:57:31
Message-ID: Pine.BSO.4.56.0412060756250.16153@leary.csoft.net
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgsql-general pgsql-jdbc

On Mon, 6 Dec 2004, Andrew M wrote:

> I have implemented your earlier suggestion:
>
> sslfactory=org.postgresql.ssl.NonValidatingFactory
>
> and no error are generated, so I presume that the connection to the
> database is now ssl'd. So why bother going through the headache of
> creating a certificate if I can do it like mentioned above?

It leaves you open to man in the middle attacks. You are no longer
verifying that the server is who they say they are.

Kris Jurka

In response to

Browse pgsql-general by date

  From Date Subject
Next Message Andrew M 2004-12-06 13:07:27 Re: SSL confirmation - No trusted certificate found
Previous Message Secrétariat 2004-12-06 12:57:16 Delete function

Browse pgsql-jdbc by date

  From Date Subject
Next Message Kris Jurka 2004-12-06 13:01:28 Re: Strange change in my where clause?
Previous Message Bjørn T Johansen 2004-12-06 12:52:03 Strange change in my where clause?